Discovering attacks and unwanted activities as they happen means you need to be informed when they are occurring. Capsule8 gives you the ability to customize alerts that output all the context you need, into whatever tools you love using to digest and manage alerts.
Once a detections are enabled, you are notified when systems behaviors violate the specified policy. You can output alerts into third party systems, such as AWS, Splunk, ELK, and other tools used to manage alerts. You can also notify team members via third party services (e.g. Slack or PagerDuty), or other custom endpoints via webhooks.
In this section you can: